video-downloading

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly navigates to and scrapes public X/Twitter pages (e.g., SKILL.md functions downloadFromUrl('https://x.com/...'), batchDownload and getVideoInfo for x.com/user/status/ID), ingesting untrusted user-generated content and using that content to determine downloads and next actions, which could enable indirect prompt injection.